3.22 SMS OTP

The SMS OTP method facilitates you to generate a single-use password or OTP and send it to the registered mobile number for authentication. You can use this OTP to authenticate within a short time frame.

When authenticating on the same smartphone that receives SMS, you can do one of the following actions based on the platform of smartphone:

  • iOS: The OTP auto inserts to clipboard, tap on the input field > OTP displayed above the keyboard.

  • Android 11 and later versions: Tap Copy <OTP> in the SMS notification then tap on the input field > OTP displayed above the keyboard.

  • Android 10 and prior versions: Open the SMS notification and copy OTP. Tap on the input field > OTP displayed above the keyboard.

NOTE:The OTP period is set to 120 seconds by default. An administrator has the privilege to change the OTP period.

NOTE:If a phone number is not registered in the repository for a user profile, then the SMS OTP method is not enrolled automatically. However, you can manually enroll the SMS OTP method from the Add Authenticator section, by specifying the phone number and clicking Save.

3.22.1 Enrolling the SMS OTP Authenticator

  1. Click the Add icon in Your Enrolled Single Methods for sign in on the Authentication Methods page.

  2. Click the SMS OTP icon in Available Methods for Enrollment.

  3. (Optional) Specify the Display Name.

  4. If your mobile phone number is registered in the LDAP repository, then the phone number is displayed. To override the registered phone number, specify the mobile number in Override Mobile Phone.

    A message Please enter OTP is displayed.

  5. Specify the verification code in Enter verification code to confirm the phone number is valid.

  6. Click Verify.

    A message The "SMS OTP" authenticator has been saved is displayed.

NOTE:An administrator has the privilege to hide the Override Mobile Phone and verification code to prevent users from providing new phone number that is not registered in the repository.

3.22.2 Testing the SMS OTP Authenticator

  1. Click the SMS OTP icon in Your Enrolled Single Methods for sign in.

  2. Click Test Method.

  3. You will receive an SMS with an OTP.

  4. Specify the OTP in Password.

  5. Click Test.

    A message Test successful is displayed.

The following table describes the possible error message along with the workarounds for the SMS OTP authentication.

Table 3-11 SMS OTP authenticator - error messages

Error

Possible Cause and Workaround

Incorrect OTP password

The specified OTP is invalid. Specify a valid OTP and try again.

You do not have a phone number. Contact administrator or Helpdesk and register your phone

If your phone number is not registered in the repository. Contact administrator or helpdesk to register phone number.